UNPKG

@aws-cdk/aws-bedrock-agentcore-alpha

Version:

The CDK Construct Library for Amazon Bedrock

github.com/aws/aws-cdk

aws/aws-cdk

76 lines (75 loc) 2.51 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
export declare namespace GatewayPerms { /****************************************************************************** * Data Plane Permissions *****************************************************************************/ /** * Permissions to invoke the gateway * Used by agents or other services that need to call the gateway */ const INVOKE_PERMS: string[]; /****************************************************************************** * Execution Role Permissions *****************************************************************************/ /** * KMS permissions for encryption * Required when using KMS keys for encryption */ const KMS_KEY_PERMS: string[]; /** * Assume role permission * Required for the gateway service to assume the execution role */ const ASSUME_ROLE: string[]; /** * Outbound auth - Workload identity permissions * Used to obtain access tokens for workload identity */ const GATEWAY_WORKLOAD_IDENTITY_PERMS: string[]; /** * Outbound auth - OAuth permissions * Used to obtain OAuth tokens for target authentication */ const GATEWAY_OAUTH_PERMS: string[]; /** * Outbound auth - API Key permissions * Used to retrieve API keys for target authentication */ const GATEWAY_API_KEY_PERMS: string[]; /** * Secrets Manager permissions * Required for storing and retrieving API keys and OAuth credentials */ const SECRETS_PERMS: string[]; /****************************************************************************** * Control Plane Permissions *****************************************************************************/ /** * Get permissions for gateway resources */ const GET_PERMS: string[]; /** * List permissions for gateway resources */ const LIST_PERMS: string[]; /** * Create permissions for gateway resources */ const CREATE_PERMS: string[]; /** * Update permissions for gateway resources */ const UPDATE_PERMS: string[]; /** * Delete permissions for gateway resources */ const DELETE_PERMS: string[]; /** * Combined manage permissions (create, update, delete) */ const MANAGE_PERMS: string[]; /** * Synchronization permissions for MCP server targets * Used to refresh tool catalogs when MCP server tools change */ const SYNC_PERMS: string[]; }